Information Disclosure Vulnerability in Mango Automation 2.5.x and 2.6.x

Information Disclosure Vulnerability in Mango Automation 2.5.x and 2.6.x

CVE-2015-7900 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote attackers to obtain sensitive debugging information by entering a crafted URL to trigger an exception, and then visiting a certain status page.

Learn more about our Web Application Penetration Testing UK.